4 个仓库
Utilities for creating memory corruption payloads, including cyclic patterns for offset discovery and shellcode templates.
Distinct from Executable Payload Generations: None of the candidates cover the specific combination of cyclic pattern generation for buffer overflows and generic shellcode templating.
Explore 4 awesome GitHub repositories matching security & cryptography · Exploit Payload Generators. Refine with filters or upvote what's useful.
Peda is a security tool suite and exploit development framework designed for binary analysis, debugger automation, and memory inspection. It functions as a set of Python scripts that extend a debugger to automate the analysis of compiled files and the inspection of process memory. The project provides specialized utilities for memory corruption research, including a payload generation utility for creating cyclic patterns to discover buffer overflows and a gadget finder to locate return-oriented programming sequences within binaries. It differentiates itself by offering a visualization tool th
Includes a utility for creating cyclic patterns to discover buffer overflow offsets and generating shellcode templates for exploit payloads.
Ladon 是一款内网渗透扫描器和漏洞评估工具,旨在识别跨网段的高风险安全漏洞和资产。它作为一款无文件安全扫描器,直接在内存中执行引擎和模块,从而避免在目标系统上留下磁盘痕迹。 该项目的特色在于作为 Cobalt Strike 框架中命令信标(Beacon)的插件集成。这实现了内存驻留的网络发现和漏洞检测。它还通过载荷和脚本混淆,以及绕过终端检测与响应(EDR)系统的技术,支持隐蔽操作。 该工具提供了一套全面的后渗透功能,包括凭据审计、提取,以及用于域渗透的 Kerberos 攻击执行。它通过多协议扫描和服务指纹识别来处理资产发现,以识别操作系统和 Web 技术。此外,它还支持横向移动自动化、权限提升以及远程代码执行载荷的部署。 该框架通过插件架构实现扩展,允许动态加载外部程序集或脚本,以添加自定义扫描模块和概念验证(PoC)。
Creates customized payloads to extend scanning capabilities and automate the process of obtaining remote shells.
ROPgadget is a binary analysis tool and multi-architecture disassembler designed to locate instructional sequences used for return-oriented programming. It functions as an exploit development framework that identifies gadgets within binaries to facilitate the creation of memory corruption exploits. The tool supports cross-architecture binary auditing, processing machine code from x86, ARM, MIPS, and RISC-V. It provides a unified interface for analyzing diverse executable file formats, including ELF, PE, and Mach-O. Its capabilities cover binary vulnerability analysis and exploit payload deve
Facilitates exploit payload development by searching for assembly gadgets to control program execution flow.
Discover 是一个基于 Bash 的渗透测试工具包,旨在自动化侦察、扫描和枚举任务。它是一个综合套件,用于开源情报收集、网络侦察、容器审计、有效载荷生成和安全数据解析。 该项目通过集成多个专业工作流脱颖而出,包括用于提取公司元数据的被动 OSINT 框架、用于映射攻击面的网络侦察套件,以及用于识别镜像和集群中漏洞与密钥的容器安全审计器。它还包含一个 Metasploit 有效载荷生成器,可跨各种架构创建反向 Shell 并自动化配置网络监听器。 该工具包涵盖了广泛的安全操作,包括针对 WAF 和 OAuth 配置错误的 Web 应用漏洞扫描、SSL 证书的基础设施审计,以及将结构化 XML 安全工具输出转换为 CSV 格式。 该工具包专为在 Kali Linux 和 Ubuntu 上运行而设计。
Generates malicious payloads and shellcode templates to facilitate security testing and exploitation.